OPNsense Forum

English Forums => Tutorials and FAQs => Topic started by: alone_k1 on September 04, 2018, 12:02:41 pm

Title: disabling list of ciphers supported by sshd
Post by: alone_k1 on September 04, 2018, 12:02:41 pm

hi, how can i disable and enable some of the ciphers that are supported by sshd ?
i edit this file:
vim /etc/ssh/sshd_config

and then restart the sshd
service openssh onerestart

and check for supported list of ciphers :
sshd -T | grep ciphers

but nothing changes , how i can change list of supported ciphers?

Title: Re: disabling list of ciphers supported by sshd
Post by: alone_k1 on September 04, 2018, 08:51:41 pm

is there any answere for this i'm in a hurry

Title: Re: disabling list of ciphers supported by sshd
Post by: alone_k1 on September 05, 2018, 05:41:56 am

does any one can help?

Title: Re: disabling list of ciphers supported by sshd
Post by: Oxygen61 on October 24, 2018, 11:31:30 pm

Pretty late answer, probably better than never :D but here is how:

>>    System: Settings: Administration

There you see "SSL Ciphers". You can tick the ones you like. I am not really sure if they are Web-GUI or SSH based or even for the whole system. After ticking and saving you should check if SSH is now working as expected with the right ciphers selected. Please make sure to check if you are still able to access the GUI after saving your changes, since all the administration is Web-GUI based. Changes in config files are rarely saved and are gone after reboot as long as they are not made via GUI.

Title: Re: disabling list of ciphers supported by sshd
Post by: franco on October 25, 2018, 02:03:15 pm

SSL ciphers option is for HTTPS only.


Cheers,
Franco